Slashdot Mirror

← Back to Stories (view on slashdot.org)

CryptoPhone Sales Jump To 100,000+, Even at $3500

Posted by timothy on from the when-envelopes-are-outlawed dept.

An anonymous reader writes "Since Edward Snowden started making NSA files public last year, GSMK has seen a jump in sales. There are more than 100,000 CryptoPhones in use today. How secure they really are will be determined in the future. But I'm sure that some government agencies, not just in the U.S., are very interested in getting a list of users." For the price the company's charging for a modified Galaxy S3, it had better be as secure as they claim; otherwise, the free and open source RedPhone from Moxie Marlinspike's Whisper Systems seems like something to think about first.

44 of 68 comments (clear)

  1. "Secure service"? by fustakrakich · · Score: 1

    Pull the other one... A phone has more than one chip in it.

    --
    “He’s not deformed, he’s just drunk!”
    1. Re:"Secure service"? by AmiMoJo · · Score: 1

      Are you aware that not every chip in a phone has full access to everything and can be used for spying?

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    2. Re:"Secure service"? by fustakrakich · · Score: 4, Insightful

      I how you are aware that it doesn't matter. Back doors are simply mandated into the service, possibly, or probably, by secret law, or it is declared illegal for use. Read the contract. Unless it specifically says the company will never, under any circumstances comply with a government order to open up its communications, then the service should not be considered secure. And even then, you still have to trust them. That is living a fantasy in today's world.

      --
      “He’s not deformed, he’s just drunk!”
    3. Re:"Secure service"? by fustakrakich · · Score: 1

      hope... not how... hope

      Thank you in advanced

      --
      “He’s not deformed, he’s just drunk!”
    4. Re:"Secure service"? by mmell · · Score: 1

      The hardware on cell phones provides the back door. Look up how SIM cards operate and get back to us (hint: it's how T-Mobile prevented Google Wallet from using NFC on my Samsung Galaxy S4, until the most recent update sent out by Samsung - an update which was sent out by mistake and never authorized by T-Mobile).

    5. Re:"Secure service"? by AmiMoJo · · Score: 1

      Um... Are you replying to the right person?

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
    6. Re:"Secure service"? by fustakrakich · · Score: 1

      I didn't know I needed to specify every little piece of the service, which, to me, encompasses the phone, software, the bank through which you pay the bill... Once anybody receives "the letter", all your communications are up for grabs. These guys are selling snake oil. Trust is not an option.

      --
      “He’s not deformed, he’s just drunk!”
  2. 'Modified' by glasshole · · Score: 1

    $3500 is a lot to spend on software

    1. Re:'Modified' by fuzzyfuzzyfungus · · Score: 3, Interesting

      $3500 is a lot to spend on software

      $350 million (not counting the cost of the S3s or whatever is included in the '2 years of service') to harden one of the mobile tracking and advertising OSes into something actually secure probably isn't wildly out of the ballpark (and probably far less than a proper actually-verified-with-proofs-and-stuff Secure System OS of that complexity).

      On the other hand, I would be shocked, shocked to hear that their security claims are...inflated... and there's a good deal of profit margin in there.

    2. Re:'Modified' by K.+S.+Kyosuke · · Score: 1

      And why is this a better idea than simply building a simple secure phone?

      --
      Ezekiel 23:20
    3. Re:'Modified' by fuzzyfuzzyfungus · · Score: 2

      Probably so that people can use the Android compatibility to load it up with privacy compromising shit. Real answer? I have no reason to think that it is, except possibly for the outfit undertaking it, who can take advantage of the fact that getting phones that are ready to run basically any Android you want, off the shelf, in quantities starting at one, is cheap and easy, while other approaches are likely to be at very least more difficult (the state of graphics drivers, say, for non-Android graphics systems is pretty dire in ARM SoC land, and you can't even fall back to VGA mode like a PC.) And if you feel like dragging something smaller than an entire Linux distribution along, (bionic or libc) prepare to enjoy the...robust ecosystem... of board support for more obscure OSes that aren't deeply proprietary.

      So, fully agreed that starting with a screaming heap of complexity whose development cycle has been driven largely by competitive pressures and which runs on hardware platforms generally larded with proprietary blobs and then trying to bolt on some security and privacy is the painfully wrong way to do it. However, if you want a half-assed cash-in at relatively low risk, released quickly enough to beat any competitors to the punch, and hit the market while Snowden is still hot news, 'cook an Android ROM with some of the obviously fucked stuff removed, ship.' is an eminently logical plan, if perhaps a rather cynical one.

    4. Re:'Modified' by K.+S.+Kyosuke · · Score: 1

      If I were to design a secure communicator, I'd personally start with Forth on some nice 32b MCU. But that's just me, I'm weird.

      --
      Ezekiel 23:20
    5. Re:'Modified' by fuzzyfuzzyfungus · · Score: 1

      Do 32bit micros have enough punch for handling a TLS-ed SIP call or the like these days? I must admit I have only the vaguest sense of their capabilities, though they would otherwise be perfectly capable of handling audio in/out, enough screen, keypad, serial link to cell modem (at least some of which still rock a very, very, extended Hayes command set, after all this time...)

    6. Re:'Modified' by K.+S.+Kyosuke · · Score: 1

      Well, a humble PIC32 has something like 300 MIPS these days. According to Microchip, you can do 1+ MB/s with that. And with voice codecs, the bit rate is fairly low. That should be more than enough for a single-(or perhaps dual-)purpose communication device (voice and text).

      --
      Ezekiel 23:20
  3. No mention of... by Gerald · · Score: 2

    ...Blackphone?

    1. Re:No mention of... by Tanaka · · Score: 1

      Ha ha... the Blackphone is a company with a US presence. How do we know this phone hasn't already been NSA 'approved'?

    2. Re:No mention of... by Anonymous Coward · · Score: 1

      How do you know the cryptophone hasn't? Unless they're 100% open source hardware and software, there's no way to know how secure they are.

    3. Re:No mention of... by The123king · · Score: 1

      At $3500 a pop, i'm sure the NSA is likely the one's who've bought the majority of the "100,000+" sold.

      --
      If you gave me a choice between a printer and a giraffe with explosive diarrhoea, i'll get my ladder and my raincoat
    4. Re:No mention of... by CauseBy · · Score: 1

      /shrug/ How do you claim to know anything at all?

    5. Re:No mention of... by Gerald · · Score: 1

      How do we know this phone hasn't already been NSA 'approved'?

      We don't, at least not with 100% certainty. I would think this applies to products from companies based outside the U.S. as well. Foreign intelligence is the NSA's primary mission, after all.

      However, given that Blackphone was founded by a team from Silent Circle and Geeksphone chances are pretty good that the product works as advertised.

    6. Re:No mention of... by flyingfsck · · Score: 1

      If the export requires an export license, then you can be sure that: a) The NSA will modify it before it gets to the user or b) It is so bad that the NSA can't be bothered to modify it.

      --
      Excuse me, but please get off my Pennisetum Clandestinum, eh!
  4. You can still buy one? by Opportunist · · Score: 3

    Then rest assured that governments know how to get into them. Else we'd have seen some kind of harebrained reason why these phones can no longer be bought and used.

    --
    We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    1. Re:You can still buy one? by Anonymous Coward · · Score: 3, Insightful

      Then rest assured that governments know how to get into them. Else we'd have seen some kind of harebrained reason why these phones can no longer be bought and used.

      They just need to track who communicates with whom. The content is not relevant.

    2. Re:You can still buy one? by Anonymous Coward · · Score: 3, Informative

      Then rest assured that governments know how to get into them. Else we'd have seen some kind of harebrained reason why these phones can no longer be bought and used.

      I don't quite follow the reasoning going from sentence 1 to conclusion at 2. Germany is not really cowboy land. The very reason it is based in Germany is because of the privacy laws there. It's actually illegal for them to build in a backdoor. Merkel should buy one :)

      When the cryptophone was at its first version, the first thing they did was to organise a hackaton for hacker friends to try to find bugs. At that time everyone could just download the software themselves, and it still is available for review: http://www.cryptophone.de/en/b...

      Before judging too quickly, maybe check some facts about Germany's laws. Disclaimer: i knew the company back in 2003, and i know its founders personally.

  5. From Germany. by Tanaka · · Score: 1

    At least it's not from a US company. There is another phone like this, and it's from a US based company. And I'm thinking... yeah right, NSA honey trap.

    We need secure software. We cant trust hardware at all, unless it's for a single purpose, with a verifiable protocol. The Bitcoin community are coming up with some great solutions, which will help.

    1. Re:From Germany. by spirit_fingers · · Score: 2

      At least it's not from a US company. There is another phone like this, and it's from a US based company. And I'm thinking... yeah right, NSA honey trap.

      We need secure software. We cant trust hardware at all, unless it's for a single purpose, with a verifiable protocol. The Bitcoin community are coming up with some great solutions, which will help.

      It's an obvious strategy for a Honey Trap. What's not so obvious is whose Honey Trap it might be. Maybe it's the NSA, but it could just as easily be Russia's SVR or Israel's Mossad or China's MSS.

    2. Re:From Germany. by wiredlogic · · Score: 2

      You deal realize that the GSM crypto was intentionality weakened at the request of EU intelligence services. The NSA had no role in making it weak.

      --
      I am becoming gerund, destroyer of verbs.
    3. Re:From Germany. by Anonymous Coward · · Score: 1

      How do you know the German company isn't a honeytrap?

  6. One word... by Anonymous Coward · · Score: 1

    I've said it before on the topic and I'll say it again. One word: Honeypot.

    I laugh hysterically at people who fork over thousands of dollars to admit they have something to hide and lead the watchers right to them.

  7. Nowhere to hide by spirit_fingers · · Score: 1

    It would be naïve to think that with all of the massive crytographic resources at their disposal, the NSA can't hack into this phone's communications at the push of a button.

  8. The problem... by ameline · · Score: 1

    With something like RedPhone is that there are multiple CPUs on the phone -- in particular, the base-band is a full ARM chip with complete access to all ram on the device. And the software running there is almost never under the users control. So it doesn't matter how good red-phone is -- if it ever leaks *any* plaintext or key bits out to ram, or across any wires outside the cpu it's running on, the baseband chip and the software running on it can wiretap you. And even if those things never leak off the main cpu die, the baseband can probably inject processes/instructions into that main chip's address space that would steal those critical key bits.

    Unless you have control over *all* the firmware running on *all* the processors in a phone, I wouldn't trust it any farther than I can comfortably spit out a rat.

    (and this is not accounting for hardware tricks -- I think you cannot trust your communications are secure unless you trust everyone involved in its design, manufacture and programming (including the compiler and related toolchain, and its compiler and toolchain -- and so on ad-infinitum) -- and that is probably a *very* sizable list indeed -- the odds that some lettered agency (looking at *you* cse/csis, nsa, gchq, fsb, etc) have not corrupted *someone* on that large list are so small that only god/fsm could tell the difference between it and 0.)

    --
    Ian Ameline
    1. Re:The problem... by Pinky's+Brain · · Score: 1

      The use of dual port memory shows just how deeply the NSA has penetrated into the industry ... lets open a huge security hole and put a huge amount of unnecessary load on the widest/fastest bus in the phone and lets tell them we need to do this for performance ... when fucking wlan can easily be put over one relatively slow LVDS pair let alone 4g.

    2. Re:The problem... by jonwil · · Score: 2

      There ARE phones out there that dont give the baseband processor and other hidden CPUs access to the main RAM. The Neo900 for example doesn't give the cellular radio module ANY access to the main ARM CPU or its RAM. In fact, design of Neo900 means that only the Linux software running on the main ARM CPU can touch the main RAM. And there is no reason you cant run 100% FOSS stack on that CPU.

      So if your stuff is encrypted by software on the main CPU, any backdoors in the baseband or SIM or whatever have no way to compromise that.

  9. only really secure communication by Max_W · · Score: 3, Insightful

    Go to the stadium in shorts and t-shirt, freshly washed (and dried indoors). Wear new style running shoes with very thin sole, as recommended in Scott Jurek's "Eat and run".

    Talk while walking via woods or a park, among trees.

    Not phone, no watch, no camera, no heavy clothing.

    And speak quietly anyway. Still it does not guarantee privacy.

    All other talk or messaging are public. It is a new brave world where there are no secrets.

    1. Re:only really secure communication by The123king · · Score: 2

      That's why if you want to do any serious terrorist plotting or organised crime, you do what the KGB has started doing, and that is going back to pen and paper (and typewriters). If it's not electronic, it can't be easily tapped or hacked.

      --
      If you gave me a choice between a printer and a giraffe with explosive diarrhoea, i'll get my ladder and my raincoat
    2. Re:only really secure communication by CauseBy · · Score: 1

      Among trees? You obviously have never read 1984.

    3. Re:only really secure communication by Anonymous Coward · · Score: 1

      If you want to succeed at any serious stuff you work alone. Any conspirator is a potential exploit mechanism no matter the comms channel. And if you absolutely have to have a conspirator (and accept the risk of compromise) you'd better make sure it's someone you don't have to communicate with remotely - like a brother. I'm looking at you, Tsarnaev...

    4. Re:only really secure communication by Neredera · · Score: 1

      Go to the stadium in shorts and t-shirt, freshly washed (and dried indoors).

      Bad Idea:

      [...] All the operator has to do is pinpoint a spot on the court or field using the screen, and the Audioscope works out how far that spot is from each of the mics, corrects for delay and then synchronizes the audio from all 315 of them. The result is a microphone that can pick out the pop of a bubblegum bubble in the middle of a basketball game..."

      http://hardware.slashdot.org/s...

  10. The NSA probably know who most the users are... by The123king · · Score: 1

    At $3500 a pop, I expect it's the NSA (or another 3-4 letter agency) who've bought most of these phones.

    --
    If you gave me a choice between a printer and a giraffe with explosive diarrhoea, i'll get my ladder and my raincoat
    1. Re:The NSA probably know who most the users are... by fustakrakich · · Score: 1

      3,500 is a nice number to trigger an IRS reporting requirement. What could possibly be better for your privacy?

      --
      “He’s not deformed, he’s just drunk!”
  11. Use crypto, become a suspect. by Anonymous Coward · · Score: 1

    While the vast majority of people do not use cryptography on all their communications those who do will be noticed and put under greater scrutiny therefore in being proactive they have made themselves a target protected only by the assumption that the technology they are employing does not contained flaws know to those who wish to monitor them, a very foolish assumption.

    Showden el al have done the NSA (and similar organisations in every other government) a favour by motivating targets to "break cover" while not actually providing them with any real protection. Even if I can't break your shine new phone protecting now I can still put an old school bug in your physical location now that I know I need to target you. Or arrange for you to acquire an attractive new friend with a lot if common interests etc. Old school methods become efficient on a large scale if the targets do you the favour of identifying themselves because your efforts can be much more focused.

     

    1. Re:Use crypto, become a suspect. by Pinky's+Brain · · Score: 1

      Is there no stegonagraphy chat app using instagram yet? Obsessive selfie taking seems like a good cover.

  12. Software stack for encrypted comm? by buybuydandavis · · Score: 1

    Isn't there a software stack for encrypted comm?

  13. Noticed that also. by Burz · · Score: 1

    Slashdot seems to be asleep when it comes to new security products, especially when its a Phil Zimmerman venture and the phone only costs about what an iPhone does.